WordPress could probably do it, you don’t have to give it public access.
WordPress could probably do it, you don’t have to give it public access.
You can try setting up a VPN, eg headscale/tailscale with your home server being an exit node, and then just set up your questionable services on a domain that only resolves locally - and then you don’t need to use authentik for authorisation to those services.
This is what I have been trying recently, and seems to work well.
Hell, my docker compose alias is a function now because I can’t be assed to cd to my compose folder before running compose, and wanted to be able to still choose if I -d and/or what containers I wanted to start/stop.
Authelia has a page on cloudflare, does this help at all? Note that I use traefik as my reverse proxy and am not using any of cloudflares advanced features.
https://www.authelia.com/integration/proxies/forwarded-headers/#cloudflare